Fixes #6088 turn off sudo and su if the connection is local the sudo user matches the current user

2026-04-04 09:43:15 +00:00 · 2014-04-03 12:02:40 -04:00
parent 2a9fcdd87c
commit cdc0819939
1 changed files with 7 additions and 0 deletions
--- a/lib/ansible/runner/init.py
+++ b/lib/ansible/runner/init.py
@@ -31,6 +31,7 @@ import sys
 import pipes
 import jinja2
 import subprocess
+import getpass

 import ansible.constants as C
 import ansible.inventory
@@ -931,6 +932,12 @@ class Runner(object):
            if conn.user == sudo_user or conn.user == su_user:
                sudoable = False
                su = False
+        else:
+            # assume connection type is local if no user attribute
+            this_user = getpass.getuser()
+            if this_user == sudo_user or this_user == su_user:
+                sudoable = False
+                su = False

        if su:
            rc, stdin, stdout, stderr = conn.exec_command(cmd,